Neighbors Across a Firewall
Firewalls restrict the flow of information across organizational boundaries. For Rendezvous messages to flow between routing daemons, the daemons must establish TCP connections between neighbors. Security administrators can permit this connection using any technique they prefer; for example:
| • | Configure the firewall to permit TLS connections on the routing daemon’s local port. Configure the routing daemons to connect with one another using TLS neighbor connections. |
| • | Configure VPN connectivity between neighbor host computers. |
| • | Configure the firewall to permit TCP connections on the routing daemon’s local port. |
| • | Configure the neighbors to connect using an SSH tunnel through the firewall. |